You are looking at preliminary documentation for a future release.
Not what you want? See the
current release documentation.
Cases APIedit
You can create, manage, configure, and send cases to external systems with these APIs:
Cases return a warning header for deprecated endpoints. The value of the warning header is in the form 299 Kibana-{kibana_version} "{warning_text}"
- Cases API: Used to open and manage security action items.
- Actions API: Used to send cases to external systems. Create connector stores the data required to interface with third-party systems, and Create or update an external incident sends Elastic Security cases to external systems.